CompTIA CySA+ (CS0-001) — Question 93

In reviewing service desk requests, management has requested that the security analyst investigate the requests submitted by the new human resources manager. The requests consist of "unlocking" files that belonged to the previous human manager. The security analyst has uncovered a tool that is used to display five-level passwords. This tool is being used by several members of the service desk to unlock files. The content of these particular files is highly sensitive information pertaining to personnel. Which of the following BEST describes this scenario? (Choose two.)

Answer options

• A. Unauthorized data exfiltration
• B. Unauthorized data masking
• C. Unauthorized access
• D. Unauthorized software
• E. Unauthorized controls

Correct answer: C

Explanation

The situation primarily involves 'Unauthorized access' as individuals are using a tool to unlock sensitive files without proper authorization. While other options like 'Unauthorized software' could apply to the tool itself, the core issue is the unauthorized access to sensitive personnel information.